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* NOTICES * 

JPO and INPIT are not responsible for any 
damages caused by the use of this translation. 

1 This document has been translated by computer. So the translation may not reflect 
the original precisely. 

2.**** shows the word which can not be translated. 
3Jn the drawings, any words are not translated. 



CLAIMS 



[Claim(s)] 

[Claim 1]A moving terminal which functions as a client. 

A moving terminal which went into one of radio area under management of two or 
more radio area where a communication range was limited, and a server which realizes 
predetermined communications service. 

Are the moving terminal connection method provided with the above, and a function in 
which after the completion of connection holds information about peculiar attestation 
exchanged for the above-mentioned moving terminal and a server by first-time 
wireless connection, respectively as it is is carried, Changing operation by radio of 
information about the attestation concerned is omitted at the time of wireless 
connection for the second time between the same moving terminal and a server. 

[Claim 2]A moving terminal connection method in a communications system provided 
with a moving terminal characterized by comprising the following which functions as a 
client, a moving terminal which went into one of radio area under management of two 
or more radio area where a communication range was limited, and a server which 
realizes predetermined communications service. 

A means by which the above-mentioned server holds information about attestation 
peculiar to the terminal concerned which a moving terminal holds even after the 
completion of connection. 

A means which matches information about terminal concerned and the 
above-mentioned attestation. 
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[Claim 3]A moving terminal which functions as a client. 

Two or more servers connected with a moving terminal included in radio area which all 
have under own management under management of one or more radio area where a 
communication range was limited via a network which realizes predetermined 
communications service. 

A result which is the moving terminal connection method provided with the above, and 
the above-mentioned moving terminal moved, When new wireless connection arises 
between different servers from having connected immediately before, a server which 
was newly the target of wireless connection, Based on information about a server 
connected until just before being received from a moving terminal at the time of the 
connection concerned, transmission of information about attestation currently 
exchanged to an applicable server is required, and a part of changing operation by 
radio of information about attestation for the second time is omitted. 

[Claim 4]A moving terminal which functions as a client, comprising, A moving terminal 
connection method in a communications system provided with two or more servers 
connected with a moving terminal included in radio area which all have under own 
management under management of one or more radio area where a communication 
range was limited via a network which realizes predetermined communications service. 
A means by which the above-mentioned server holds information about attestation 
peculiar to the terminal concerned which a moving terminal holds even after the 
completion of connection. 

A means which matches information about terminal concerned and the 
above-mentioned attestation. 

A means to transmit information about attestation peculiar to a terminal currently 
held actually according to a demand from other servers. 

[Claim 5]A moving terminal which functions as a client. 

Two or more servers connected with a moving terminal included in radio area which all 
have under own management under management of one or more radio area where a 
communication range was limited via a network which realizes predetermined 
communications service. 

Are the above the moving terminal connection method which it had, and the 
above-mentioned server, A function to transmit beforehand information about 
attestation peculiar to a moving terminal exchanged by first-time wireless connection 
to all the servers of others which the moving terminal concerned may connect to the 
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next is carried, A part of changing operation by radio of information about attestation 
with a server which was newly the target of wireless connection is omitted. 

[Claim 6]A moving terminal which functions as a client, comprising, A moving terminal 
connection method in a communications system provided with two or more servers 
connected with a moving terminal included in radio area which all have under own 
management under management of one or more radio area where a communication 
range was limited via a network which realizes predetermined communications service. 
A means by which the above-mentioned server holds information about attestation 
peculiar to the terminal concerned which a moving terminal holds even after the 
completion of connection. 

A means which matches information about terminal concerned and the 
above-mentioned attestation. 

A means to be other servers connected via a network and to transmit beforehand 
information about attestation peculiar to a terminal currently held actually to all the 
servers which may be connected with the terminal concerned next. 

[Claim 7]A moving terminal which functions as a client. 

Two or more servers connected with a moving terminal included in radio area which all 
have under own management under management of one or more radio area where a 
communication range was limited via a network which realizes predetermined 
communications service. 

Are the above the moving terminal connection method which it had, and the 
above-mentioned server, A function to transmit beforehand information about 
attestation peculiar to a moving terminal exchanged by first-time wireless connection 
to all the servers of others located on moving trucking which had setting out in 
beforehand about the moving terminal concerned is carried, A part of changing 
operation by radio of information about attestation with a server which was newly the 
target of wireless connection is omitted. 

[Claim 8]A moving terminal which functions as a client. 

Two or more servers connected with a moving terminal included in radio area which all 
have under own management under management of one or more radio area where a 
communication range was limited via a network which realizes predetermined 
communications service. 

Are the above the moving terminal connection method which it had, and the 
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above-mentioned server, A means by which after the completion of connection holds 
information about attestation peculiar to the terminal concerned which a moving 
terminal holds, A means which matches information about terminal concerned and the 
above-mentioned attestation, Have a means to transmit beforehand information about 
attestation peculiar to a terminal currently held actually to all the servers of others 
located on moving trucking which is other servers connected via a network and had 
setting out in beforehand about the moving terminal concerned, and the 
above-mentioned moving terminal After starting, Transmit and information about 
attestation peculiar to self at the time of wireless connection of the beginning with the 
1st server, and information about moving trucking which had setting out in beforehand 
the 1st server of the above, Make information for matching information about the 
above-mentioned attestation with the information concerned correspond, and hold it, 
and. These information is beforehand transmitted to all the servers of others located 
on moving trucking which is other servers connected with self via a network, and had 
setting out in beforehand about the moving terminal concerned, The above-mentioned 
moving terminal transmits at the time of connection with the 1st server of the above, 
and the 2nd server connected via a network, and information for matching information 
about the above-mentioned attestation the 2nd server of the above, When information 
which received transmission from the 1st server beforehand based on information for 
matching information about the above-mentioned attestation is retrieved and 
information about applicable attestation exists, a moving terminal newly connected 
based on the information concerned is attested. 

[Claim 9]A moving terminal which functions as a client. 

Two or more servers connected with a moving terminal included in radio area which all 
have under own management under management of one or more radio area where a 
communication range was limited via a network which realizes predetermined 
communications service. 

Are the above the moving terminal connection method which it had, and the 
above-mentioned server, With that to which it is the information which matches 
information about attestation peculiar to a moving terminal exchanged by first-time 
wireless connection with information about the attestation concerned, and the term of 
validity was attached. A function beforehand transmitted to all the servers of others 
located on moving trucking which had setting out in beforehand about the moving 
terminal concerned is carried, and a part of changing operation by radio of information 
about attestation with a server which was newly the target of wireless connection is 
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omitted. 

[Claim 10]A moving terminal which functions as a client, comprising, A moving terminal 
connection method in a communications system provided with two or more servers 
connected with a moving terminal included in radio area which all have under own 
management under management of one or more radio area where a communication 
range was limited via a network which realizes predetermined communications service. 
A means by which the above-mentioned server holds information about attestation 
peculiar to the terminal concerned which a moving terminal holds even after the 
completion of connection. 

A means which matches information about terminal concerned and the 
above-mentioned attestation. 

A means to transmit beforehand information about attestation peculiar to a terminal 
currently held actually to all the servers of others located on moving trucking which is 
other servers connected via a network and had setting out in beforehand about the 
moving terminal concerned. 

A means to presume time taken for a moving terminal to move in a moving trucking 
top. 



[Translation done.] 



DETAILED DESCRIPTION 



[Detailed Description of the Invention] 

[0001] 

[Field of the Invention]In the system which connects movable clients, such as a 
personal digital assistant and mounted information machines and equipment, with the 
latest server by the radio to which the communication range was limited, and enables 
offer of service, this invention relates to the connection method which simplifies 
connection between a client and a server. 
[0002] 

[Description of the Prior Art]Now, movable clients, such as a personal digital assistant 
and mounted information machines and equipment, are connected with the latest 
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server by the radio to which the communication range was limited, and various things 
as a system which enables offer of service are actually employed. For example, there 
are a system which extends the green light in front of an emergency vehicle, a system 
which provides peripheral information, etc. 

[0003]Among these, the system which extends the green light in front of an 
emergency vehicle is a system which makes the signal ahead of an emergency vehicle 
blue so that an emergency vehicle can arrive at the destination early if possible. This 
system comprises radio communication equipment, a client, a server, etc. 
[0004]Radio communication equipment is installed so that it may have minimum radio 
area fixed on the road in front of a signal. On the other hand, only when it is carried in 
an emergency vehicle and is in radio area, a server and communication are possible 
for a client via radio communication equipment. It is connected with radio 
communication equipment and a signal in a network, and the server can control the 
change timing of a signal. One or more radio communication equipments are required 
for one signal. The number of servers may be one at two or more crossings [ one / at 
least ] at one signal. 

[0005] If a client goes into radio area, mutual recognition will be performed between a 
client and a server and a server will control the change timing of a signal according to 
the demand from a client. Here, the server makes the signal ahead of an emergency 
vehicle blue until an emergency vehicle passes. The method by the public key in which 
management of an encryption key is comparatively easy is often used for attestation, 
and SSL etc. which were generally well known as Challenge Handshake Authentication 
Protocol are used for it in many cases. 

[0006]This system has unnecessary reference~by~location speciality stages, such as 
GPS, to a client, since it is realizable only with the local device of the signal 
circumference, the server side has the small cost of an introducing initial, and 
expansion of the area of service provision is also easy for it. 

[0007]On the other hand, a peripheral information providing system is a system by 
which a server provides the user holding a client with useful information according to 
the position of a client. As an example of the information to provide, there are facility 
information of traffic information, such as traffic restriction and traffic congestion, 
vacant parking lot information, a rest station, a restaurant, etc., etc. 
[0008]This system is also realizable with the almost same composition as the 
aforementioned green light extension system. However, radio area is not restricted 
only just before a signal. Two or more servers are divided into a suitable layered 
structure according to the kind of information, and management of the information in a 
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server can also be carried out by the server of a higher rank. 

[0009] If a client goes into radio area, mutual recognition is performed between a client 
and a server and a server provides suitable information according to the demand from 
a client. Radio area is not made into a wide area, but a fine offer of information 
becomes possible by pinpointing minimum radio area according to the current position 
and direction of movement of a client. By using interactively with a client, the advance 
reservation of institutions, such as a motor poof, etc. are possible. 
[0010] As a system realizable with the same composition, there are a taxi allocating 
system, other on-demand path systems, etc. 
[0011] 

[Problem(s) to be Solved by the Invention]However, in the case of the 
above-mentioned system configuration, the technical problem as shown below 
occurred. 

[0012]While one client passes through two or more radio area, when using one service 
continuously, whenever it advanced into the communications area, performs 
authentication needed to be performed from the beginning. 

[001 3] However, if it is in the radio communication equipment which performs the 
above-mentioned local communication, compared with communication by the cable 
from the problem of the cost of an infrastructure building, etc., or the radio of a wide 
area, access speed is usually dramatically slow. 

[0014]For this reason, a client needs to suppress as small as possible information 
required for the attestation transmitted by radio communication equipment in the 
system which carries out high speed movement. 
[0015] 

[Means for Solving the Problem]This invention was made in consideration of the 
above technical problem, and it proposes the following means in order to solve this 
technical problem. 

[001 6] (A) Save information about attestation exchanged by first-time connection in 
each of a server and a client as the 1st means, and when a client uses the same 
server, propose simplification technique for performs authentication. 
[0017](1) Namely, it puts under management of a moving terminal which functions as a 
client, and two or more radio area where a communication range was limited, In a 
moving terminal connection method of a moving terminal included in one of radio area, 
and a communications system provided with a server which realizes predetermined 
communications service, A function in which after the completion of connection holds 
information about peculiar attestation exchanged by first-time wireless connection at 
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a moving terminal and a server, respectively as it is is carried, and a method of making 
changing operation by radio of information about the attestation concerned omitting 
at the time of wireless connection for the second time between the same moving 
terminal and a server is proposed. 

[0018]It more specifically than (2) puts under management of a moving terminal which 
functions as a client, and two or more radio area where a communication range was 
limited, A thing provided with the following features is proposed in a moving terminal 
connection method of a moving terminal included in one of radio area, and a 
communications system provided with a server which realizes predetermined 
communications service. 

[0019]** A server has a means by which after the completion of connection holds 
information about attestation peculiar to the terminal concerned which a moving 
terminal holds, and a means which matches information about terminal concerned and 
attestation. 

[0020]** A moving terminal transmits information about attestation after starting at 
the time of wireless connection of the beginning with a server. ** A server makes it 
correspond with information for matching information about attestation, and hold it, 
and it transmits information for matching information about attestation to the moving 
terminal concerned. ** A moving terminal transmits information for matching 
information about attestation at the time of re connection of SABAHE. ** A server 
takes out information about attestation of the moving terminal concerned using 
information for matching information about attestation, and attests a moving terminal 
based on information about attestation of the taken-out moving terminal concerned. 
[0021](B) It is requiring information about attestation which a newly connected server 
exchanged by first-time connection to a server connected immediately before, when a 
client's continues and uses two or more servers as the 2nd means, Simplification 
technique is proposed for performs authentication in re connection of a server of the 
same security domain. 

[0022](1) Namely, it puts under management of a moving terminal which functions as a 
client, and one or more radio area where a communication range was limited, In a 
moving terminal connection method in a communications system provided with two or 
more servers connected with a moving terminal included in radio area which has all 
under own management via a network which realizes predetermined communications 
service, When new wireless connection arises between different servers from having 
connected immediately before as a result of movement of a moving terminal, a server 
which was newly the target of wireless connection, Based on information about a 
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server connected until just before being received from a moving terminal at the time 
of the connection concerned, transmission of information about attestation currently 
exchanged to an applicable server is required, and a method of making a part of 
changing operation by radio of information about attestation for the second time 
omitting is proposed. 

[0023]It more specifically than (2) puts under management of a moving terminal which 
functions as a client, and one or more radio area where a communication range was 
limited, In a moving terminal connection method in a communications system provided 
with two or more servers connected with a moving terminal included in radio area 
under own management via a network which realizes predetermined communications 
service, all propose a thing provided with the following features. 
[0024]** A server has a means by which after the completion of connection holds 
information about attestation peculiar to the terminal concerned which a moving 
terminal holds, a means which matches information about terminal concerned and 
attestation, and a means to transmit information about attestation peculiar to a 
terminal currently held actually according to a demand from other servers. 
[0025]** A moving terminal transmits information about attestation peculiar to self at 
the time of wireless connection of the beginning with the 1st server after starting. ** 
The 1st server makes it correspond with information for matching information about 
attestation, and hold it, and it transmits information for matching information about 
attestation, and position information on own to the moving terminal concerned. ** A 
moving terminal transmits information for matching information about attestation, and 
position information on the 1st server at the time of connection of the 2nd SABAHE 
connected via the 1 st server and network. ** The 2nd server requires transmission of 
information about attestation of the terminal concerned by transmitting information 
for matching information about attestation to the 1st server. ** The 1st server 
transmits the information concerned to the 2nd server, when information about 
attestation which self holds based on information for matching information about 
attestation which the 2nd server requires is retrieved and information about applicable 
attestation exists. ** The 2nd server attests a moving terminal newly connected 
based on information about receiving-from 1st servei — transmission attestation. 
[0026](C) It is transmitting information about attestation to all the servers which a 
client may connect to the next beforehand, when a client's continues and uses two or 
more servers as the 3rd means, Simplification technique is proposed for performs 
authentication in re connection of a server of the same security domain. 
[0027](1) Namely, it puts under management of a moving terminal which functions as a 
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client, and one or more radio area where a communication range was limited, In a 
moving terminal connection method in a communications system provided with two or 
more servers connected with a moving terminal included in radio area which has all 
under own management via a network which realizes predetermined communications 
service, A server information about attestation peculiar to a moving terminal 
exchanged by first-time wireless connection, A function beforehand transmitted to all 
the servers of others which the moving terminal concerned may connect to the next 
is carried, and a method of making a part of changing operation by radio of information 
about attestation with a server which was newly the target of wireless connection 
omitting is proposed. 

[0028] It more specifically than (2) puts under management of a moving terminal which 
functions as a client, and one or more radio area where a communication range was 
limited, In a moving terminal connection method in a communications system provided 
with two or more servers connected with a moving terminal included in radio area 
under own management via a network which realizes predetermined communications 
service, all propose a thing provided with the following features. 
[0029]** A means by which a server holds information about attestation peculiar to 
the terminal concerned which a moving terminal holds even after the completion of 
connection, It has a means to be other servers connected via a network and to 
transmit beforehand information about a means which matches information about 
terminal concerned and attestation, and attestation peculiar to a terminal currently 
held actually to all the servers which may be connected with the terminal concerned 
next. 

[0030]** A moving terminal transmits information about attestation peculiar to self at 
the time of wireless connection of the beginning with the 1st server after starting. ** 
The 1st server makes information about attestation correspond with information for 
matching with the information concerned, holds it, and is other servers connected 
with self via a network, and transmits these information to all the servers which may 
be connected with the moving terminal concerned next beforehand. ** A moving 
terminal transmits information for matching information about attestation at the time 
of connection with the 1 st server and the 2nd server connected via a network. ** The 
2nd server attests a moving terminal newly connected based on the information 
concerned, when information which received transmission from the 1st server 
beforehand based on information for matching information about attestation is 
retrieved and information about applicable attestation exists. 
[0031 ](D) When a client uses two or more servers in accordance with a course 
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planned a priori as the 4th means, it is transmitting information about attestation to all 
the servers on moving trucking of a client beforehand, Simplification technique is 
proposed for performs authentication in re connection of a server of the same 
security domain. 

[0032](1) Namely, it puts under management of a moving terminal which functions as a 
client, and one or more radio area where a communication range was limited, In a 
moving terminal connection method in a communications system provided with two or 
more servers connected with a moving terminal included in radio area which has all 
under own management via a network which realizes predetermined communications 
service, A server information about attestation peculiar to a moving terminal 
exchanged by first-time wireless connection, A function beforehand transmitted to all 
the servers of others located on moving trucking which had setting out in beforehand 
about the moving terminal concerned is carried, and a method of making a part of 
changing operation by radio of information about attestation with a server which was 
newly the target of wireless connection omitting is proposed. 

[0033]It more specifically than (2) puts under management of a moving terminal which 
functions as a client, and one or more radio area where a communication range was 
limited, In a moving terminal connection method in a communications system provided 
with two or more servers connected with a moving terminal included in radio area 
under own management via a network which realizes predetermined communications 
service, all propose a thing provided with the following features. 
[0034]** A means by which a server holds information about attestation peculiar to 
the terminal concerned which a moving terminal holds even after the completion of 
connection, A means which matches information about terminal concerned and 
attestation, It has a means to transmit beforehand information about attestation 
peculiar to a terminal currently held actually to all the servers of others located on 
moving trucking which is other servers connected via a network and had setting out in 
beforehand about the moving terminal concerned. 

[0035]** A moving terminal transmits after starting information about attestation 
peculiar to self at the time of wireless connection of the beginning with the 1st server, 
and information about moving trucking which had setting out in beforehand. ** The 1st 
server makes information for matching information about attestation with the 
information concerned correspond, and holds it, and. These information is beforehand 
transmitted to all the servers of others located on moving trucking which is other 
servers connected with self via a network, and had setting out in beforehand about 
the moving terminal concerned. ** A moving terminal transmits information for 
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matching information about attestation at the time of connection with the 1st server 
and the 2nd server connected via a network. ** The 2nd server attests a moving 
terminal newly connected based on the information concerned, when information 
which received transmission from the 1st server beforehand based on information for 
matching information about attestation is retrieved and information about applicable 
attestation exists. 

[0036](E) When a client uses two or more servers in accordance with a course 
planned a priori as the 5th means, it is transmitting information about attestation to a 
server on moving trucking next to a client beforehand, A method of enabling effective 
use of resources is proposed by establishing performs authentication in re connection 
of a server of the same security domain for the term of validity of simplification RE 
and information concerning attestation further. 

[0037](1) Namely, it puts under management of a moving terminal which functions as a 
client, and one or more radio area where a communication range was limited, In a 
moving terminal connection method in a communications system provided with two or 
more servers connected with a moving terminal included in radio area which has all 
under own management via a network which realizes predetermined communications 
service, A server with that to which it is the information which matches information 
about attestation peculiar to a moving terminal exchanged by first-time wireless 
connection with information about the attestation concerned, and the term of validity 
was attached. A function beforehand transmitted to all the servers of others located 
on moving trucking which had setting out in beforehand about the moving terminal 
concerned is carried, and a method of making a part of changing operation by radio of 
information about attestation with a server which was newly the target of wireless 
connection omitting is proposed. 

[0038]It more specifically than (2) puts under management of a moving terminal which 
functions as a client, and one or more radio area where a communication range was 
limited, In a moving terminal connection method in a communications system provided 
with two or more servers connected with a moving terminal included in radio area 
under own management via a network which realizes predetermined communications 
service, all propose a thing provided with the following features. 
[0039]** A means by which a server holds information about attestation peculiar to 
the terminal concerned which a moving terminal holds even after the completion of 
connection, A means to transmit beforehand information about a means which 
matches information about terminal concerned and attestation, and attestation 
peculiar to a terminal currently held actually to all the servers of others located on 
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moving trucking which is other servers connected via a network and had setting out in 
beforehand about the moving terminal concerned, It has a means to presume time 
taken for a moving terminal to move in a moving trucking top. 
[0040]** A moving terminal transmits after starting information about attestation 
peculiar to self at the time of wireless connection of the beginning with the 1 st server, 
and information about moving trucking which had setting out in beforehand. ** The 1st 
server makes information for matching information about attestation with the 
information concerned correspond, and holds it, and. Earned hours presumed to 
require for passing each server to each of a server located on moving trucking which 
is other servers by which these information was connected with self via a network, 
and had setting out in beforehand about the moving terminal concerned are attached, 
and it transmits beforehand. ** A moving terminal transmits information for matching 
information about attestation at the time of connection with the 1st server and the 
2nd server connected via a network. ** The 2nd server retrieves information which 
received transmission from the 1st server beforehand based on information for 
matching information about attestation, When information about applicable attestation 
exists, a moving terminal newly connected based on the information concerned is 
attested, and the information concerned is deleted after progress of the earned hours. 
[0041] 

[Embodiment of the Invention](A) a 1st embodiment — here explains the embodiment 
corresponding to the 1 st above-mentioned means. 

[0042] (A- 1) The system configuration which applies the moving terminal connection 
method concerning this embodiment is shown in system configuration drawing 2 . As 
for one, as for a server, and 2A-2C, radio communication equipment and 3 are clients 
among a figure. In order to explain easily, only a server and one client are illustrated 
respectively. 

[0043]Here, the server 1 is mounted in electronic computers, such as a workstation, 
and is connected via two or more radio communication equipments 2A-2G and 
networks. Radio is not eliminated although a network generally becomes with a cable. 
[0044]The radio communication equipments 2A-2C have the communications area 
fixed respectively, and mutual radio area does not cross. 

[0045]The client 3 includes the function which shall be realized by movable electronic 
computers, such as a personal digital assistant, and can communicate with the server 
1 via the radio communication equipments 2A-2C. 

[0046]The functional constitution of the server 1 is shown in drawing 3 . As for a 
certificate storage and 1 3, 1 1 is [ a service execution part and 15 ] the 
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communications departments a temporary ID issuing part and 14 an authentication 
section and 12. The functional constitution of the client 3 is shown in drawing 4. As for 
a certificate storage and 23, 21 is [ a service execution part and 25 ] the Radio 
Communications Department a temporary ID storage and 24 an authentication section 

and 22. 

[0047]Here, the certificate storages 12 and 22 are realized by memory storage, such 
as RAM. The temporary ID storage 23 is also the same. About each function of the 
authentication sections 1 1 and 21 T temporary ID issuing part 13, and the service 
execution parts 14 and 24, it realizes by either software processing or hardware 
processing. 

[0Q48](A-2) The example of connecting operation performed by a 1st embodiment is 
shown in connecting operation drawing 1 . Drawing 1 (a) expresses the initial 
connection sequence performed when it goes into the radio area which a server which 
is different when it goes into radio area for the first time after the client's 3 starting 
manages. Drawing 1 (b) expresses the re connection sequence performed when it 
trespasses upon the radio area which the server as last time with the same client 3 
that finished performs authentication once manages again. 

[0Q49]First, the initial connection sequence shown in drawing 1 (a) is explained. In this 
sequence, the client 3 transmits an authentication demand message to a server first, 
and (1) and the server 1 answer by an authentication reply message (2). Negotiation of 
a cryptographic algorithm or a data compression method is performed by this 
exchange. 

[0050] In the authentication reply from the server 1, temporary ID which temporary ID 
issuing part 13 generated is attached. Temporary ID is an identifier for specifying the 
client which exists in a system at the time as a meaning. 

[0051]Next, the certificate containing the public key of a server is sent to a client, and, 
as for the server 1, (3) and the client 3 send the certificate containing the public key 
of a client to a server (4). The client 3 saves temporary ID at the temporary ID storage 
23, and saves the certificate of the server at the certificate storage 22. The server 1 
makes the certificate of a client correspond with published temporary ID, and saves it 
at the certificate storage 1 2. 

[0052] Next, the client 3 enciphers a pre master key by the public key of a server, 
attaches the signature of a client, and sends it to a server (5). 

[0053]By decrypting a message with the secret key of a server, the server 1 takes out 
a pre master key and checks the signature of a client by the public key of a client. The 
client 3 and the server 1 generate the master key used for actual communication by a 
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pre master key. 

[0054] Next, both the client 3 and the server 1 transmit the message which checks 
what communicative preparation was able to carry out, and it starts the data 
exchange about (6) and service (7). The data exchange about service performs 
encryption by a symmetrical cipher system with a master key. 

[0055]Then, the re connection sequence shown in drawing 1 (b) is explained. In this 
sequence, the client 3 transmits an authentication demand message to a server first, 
and (1) and the server 1 answer by an authentication reply message (2). In the 
authentication demand from the client 3, it is given by the server at the time of initial 
connection, and temporary ID currently kept by the temporary ID storage 23 of the 
client is attached. 

[0056]The server 1 takes out the certificate of a client corresponding from the 
certificate storage 12 by sent temporary ID. Thereby, the replacement procedure of a 
certificate is skipped compared with an initial authentication procedure. It is the same 
as that of a following and initial authentication procedure. 

[0057]Although the above-mentioned procedure may change a little with authentic 
methods which a system adopts, also in which method, it can omit the message 
switching for certificate exchange in that a server and a client save the once 
exchanged certificate. 

[0058] (A~3) the effect of a 1st embodiment, since the information about the 
attestation which the client and the server exchanged at the time of first-time 
connection is saved in each of a server and a client as mentioned above according to 
a 1st embodiment, Transmission of a certificate can be made unnecessary when a 
client uses the same server again. For this reason, reduction of the server at the time 
of re connection and the traffic between clients is realizable. 

[0059] (B) a 2nd embodiment — here explains the embodiment corresponding to the 
2nd above-mentioned means. 

[0060](B-1) The system configuration which applies the moving terminal connection 
method concerning this embodiment is shown in system configuration drawing 5 . As 
for 1A-1C, as for a server, and 2A-2C, radio communication equipment and 3 are 
clients among a figure. In order to explain easily, only three servers are illustrated and 
only one client is illustrated. 

[0061]This embodiment also uses that by which the servers 1A-1G are mounted in 
electronic computers, such as a workstation. However, the servers 1A-1G are 
connected via radio communication equipment, and other respectively specific 
servers and networks. Incidentally, as for the radio communication equipment 2A and 



Publication JP 2001-313979 



the server IB, radio communication equipment 2B and the server 1C are connected 
with the radio communication equipment 2C for the server 1 A. 
[0062]The radio communication equipments 2A-2C have the communications area 
fixed respectively, and mutual radio area does not cross. 

[0063]The client 3 includes the function which shall be realized by movable computers, 
such as a personal digital assistant, and can communicate with the servers 1 A-1C via 
the radio communication equipments 2A-2C. 

[0064]The functional constitution of the servers 1 A-1G is shown in drawing 6. As for a 
temporary ID issuing part and 14, an authentication section and 12 are [ the 
communications department and 16 ] certificate transfer parts a service execution 
part and 15 a certificate storage and 13 11. This composition is the same composition 
as the server which requires the certificate transfer part 16 for a 1st embodiment 
except for the point newly added. 

[0065]Here, when there is a demand of a certificate from other servers connected via 
the network, the certificate transfer part 16 is formed in order to realize the function 
which reads a certificate applicable from the proof storage 12, and is transmitted to 
the communications department 15. 

[0066]The functional constitution of the client 3 is shown in drawing 7 . As for a 
temporary ID storage and 24, an authentication section and 22 are [ the Radio 
Communications Department and 26 ] just before server position information storages 
a service execution part and 25 a certificate storage and 23 21. This composition is 
the same composition as the client which requires the just before server position 
information storage 26 for a 1st embodiment except for the point newly added. 
[006 7] It is what is provided in order that the just before server position information 
storage 26 can reduce the send actions of the certificate by a client as much as 
possible here, The position information on the server connected immediately before 
(the information not only the information in front of one but in front of two may not 
necessarily be sufficient, and two information, one and two before, may be sufficient.) 
is stored. Generally, the storage concerned is realized by memory storage, such as 
RAM. 

[0068](B-2) The outline of the connecting operation performed by a 2nd embodiment 
is shown in connecting operation drawing 8 . Drawing 8 (a) expresses the initial 
connection sequence performed when it goes into radio area for the first time after 
the client's 3 starting, or when the last time connected radio area goes into the radio 
area of other networks without connecting relation. Drawing 8 (b) expresses the re 
connection sequence performed when the client 3 which finished performs 
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authentication once trespasses upon the last time connected radio area and other 
radio area on the network in connecting relation again. 

[0069]In the following explanation, the client 3 makes the server which connects to 
the server IB and the next the server connected first the server 1 A. 
[0070] First, the initial connection sequence shown in drawing 8 (a) is explained. In this 
sequence, the client 3 transmits an authentication demand message to the server 1 B 
first, and (1) and the server 1B answer by an authentication reply message (2). 
Negotiation of a cryptographic algorithm or a data compression method is performed 
by this exchange. 

[0071]In the authentication reply from the server IB, temporary ID which temporary 
ID issuing part 13 generated, and the position information which pinpoints the position 
of this server 1B are attached. Here, position information may be stored in 
unillustrated memory storage, and may be stored in temporary ID issuing part 13. 
Temporary ID is an identifier for specifying the client which exists in a system at the 
time as a meaning. 

[0072]Next, the certificate containing the public key of the server IB is sent to the 
client 3, and, as for the server 1B, (3) and the client 3 send the certificate containing 
the public key of the client 3 to the server 1B (4). the client 3 — the certificate of the 
server 1B is saved at the certificate storage 22, and the position information on the 
server IB is saved for temporary ID at the temporary ID storage 23 at the just before 
server position information storage 26. The server IB makes the certificate of a client 
correspond with published temporary ID, and saves it at the certificate storage 12. 
[0073]Next, the client 3 enciphers a pre master key by the public key of a server, 
attaches the signature of a client, and sends it to a server (5). 

[0074]By decrypting a message with the secret key of the server IB, the server IB 
takes out a pre master key, and checks the signature of a client by the public key of a 
client. The client 3 and the server IB generate the master key used for actual 
communication by a pre master key. 

[0075]Next, both the client 3 and the server 1B transmit the message which checks 
what communicative preparation was able to carry out, and it starts the data 
exchange about (6) and service (7). The data exchange about service performs 
encryption by a symmetrical cipher system with a master key. 

[0076]Then, the re connection sequence shown in drawing 8 (b) is explained. In this 
sequence, it is assumed that the server 1 A shares this radio area first. That is, the 
client 3 assumes that it is moving from the time of the last connection, and has 
already moved to the radio area which the server 1 A manages from the radio area 
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which the server IB manages. 

[0077]Therefore, the client 3 transmits an authentication demand message to the 
server 1A first, and (1) and the server 1 A answer by an authentication reply message 
(2). In the authentication demand from the client 3, it is given by the server 1B at the 
time of initial connection, and the position information on temporary ID currently kept 
by the temporary ID storage 23 of the client and the server 1B saved at the just 
before server position information storage 26 is attached. 

[0078]The server 1 specifies the server 1B from the sent position information, sends 
temporary ID of the client 3 to the server 1B connected via the network, and requires 
the certificate of the client concerned (3). 

[0079]By sent temporary ID, the server IB takes out the certificate of a client 
corresponding from the certificate storage 12, and returns it to the server 1 A (4). 
[0080]Thereby, the replacement procedure of a client certificate is skipped compared 
with an initial authentication procedure. It is the same as that of a following and initial 
authentication procedure. 

[0081] Although the above-mentioned procedure may change a little with authentic 
methods which a system adopts, also in which method, it can omit the message 
switching for certificate exchange in that a server saves the once exchanged 
certificate. 

[Q082](B-3) the effect of a 2nd embodiment, since the server linked to a client and 
the beginning saves the information (certificate) about attestation of a client as 
mentioned above according to a 2nd embodiment, Also when a client uses two or more 
servers connected via the network, transmission of the certificate of a client can be 
made unnecessary between the server and client linked to the next. For this reason, 
when using two or more servers in order, the traffic between the server and client 
linked to the next can be reduced. 

[0083] (C) The system configuration which applies the moving terminal connection 
method concerning this embodiment is shown in the 3rd embodiment (G*-1) system 
configuration drawing 9 . As for 1A-1C, as for a server, and 2A-2C, radio 
communication equipment and 3 are clients among a figure. In order to explain easily, 
only three servers are illustrated and only one client is illustrated. 
[0084]This embodiment also uses that by which the servers 1A-1G are mounted in 
electronic computers, such as a workstation. However, the servers 1 A-1C are 
connected via radio communication equipment, and other respectively specific 
servers and networks. Incidentally, as for the radio communication equipment 2A and 
the server 1B, radio communication equipment 2B and the server 1C are connected 
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with the radio communication equipment 2C for the server 1 A. 

[0085]The radio communication equipments 2A-2C have the communications area 

fixed respectively, and mutual radio area does not cross. 

[0086]The client 3 includes the function which shall be realized by movable computers, 
such as a personal digital assistant, and can communicate with the servers 1A-1C via 
the radio communication equipments 2A-2C. 

[0087]The functional constitution of the servers 1A-1C is shown in drawing 10. 1 1 — 
as for a service execution part and 15, a certificate storage and 13 are [ a certificate 
transfer part and 17 ] contiguity server information storing parts the communications 
department and 16 a temporary ID issuing part and 14 an authentication section and 
12. This composition is the same composition as the server which requires the 
contiguity server information storing part 1 7 for a 2nd embodiment except for the 
point newly added. 

[0088]Here, since information for the server concerned to communicate with other 
servers of the server circumference concerned is stored, the contiguity server 
information storing part 1 7 is formed. 

[0089]The functional constitution of the client 3 is shown in drawing 1 1 . As for a 
certificate storage and 23, 21 is [ a service execution part and 25 ] the Radio 
Communications Department a temporary ID storage and 24 an authentication section 
and 22. This composition is the same composition as the client concerning a 1st 
embodiment. 

[0090](C-2) The outline of the connecting operation performed by a 3rd embodiment 
is shown in connecting operation drawing 12. Drawing 12 (a) expresses the initial 
connection sequence performed when it goes into radio area for the first time after 
the client's 3 starting, or when the last time connected radio area goes into the radio 
area of other networks without connecting relation. Drawing 12 (b) expresses the re 
connection sequence performed when the client 3 which finished performs 
authentication once trespasses upon the last time connected radio area and other 
radio area on the network in connecting relation again. 

[0091] In the following explanation, the client 3 makes the server which connects to 
the server 1B and the next the server connected first the server 1 A. The radio area 
which the server 1A and the server 1C manage shall be around the radio area which 
the server 1 B manages. 

[0092] First, the initial connection sequence shown in drawing 12 (a) is explained. In 
this sequence, the client 3 transmits an authentication demand message to the server 
1B first, and (1) and the server IB answer by an authentication reply message (2). 



19 



Publication JP 2001-318979 



Negotiation of a cryptographic algorithm or a data compression method is performed 
by this exchange. 

[0093]In the authentication reply from the server IB, temporary ID which temporary 
ID issuing part 13 generated is attached. Temporary ID is an identifier for specifying 
the client which exists in a system at the time as a meaning. 

[0094] Next, the certificate containing the public key of the server IB is sent to the 
client 3, and, as for the server IB, (3) and the client 3 send the certificate containing 
the public key of the client 3 to the server 1B (4). The client 3 saves temporary ID at 
the temporary ID storage 23, and saves the certificate of the server 1 B at the 
certificate storage 22. The server 1B makes the certificate of a client correspond with 
published temporary ID, and saves it at the certificate storage 12. 
[0095]Next, the client 3 enciphers a pre master key by the public key of a server, 
attaches the signature of a client, and sends it to a server (5). 

[0096] By decrypting a message with the secret key of the server IB, the server IB 
takes out a pre master key, and checks the signature of a client by the public key of a 
client. The client 3 and the server 1B generate the master key used for actual 
communication by a pre master key. 

[009 7] Next, both the client 3 and the server 1B transmit the message which checks 
what communicative preparation was able to carry out, and it starts the data 
exchange about (6) and service (7). The data exchange about service performs 
encryption by a symmetrical cipher system with a master key. 
[0098]When the data exchange about service is completed, or when the client 3 
comes from the radio area which the server IB manages outside, the server 1 B, 
Based on the server information stored in the contiguity server information storing 
part 17, the certificate and temporary ID of the client concerned are transmitted to 
the server 1A and the server 1C. The server 1A and the server 1C make the received 
certificate correspond with temporary ID, and are saved at the certificate storage 12. 
[0099]Then, the re connection sequence shown in drawing 12 (b) is explained. In this 
sequence, it is assumed that the server 1A shares this radio area first. That is, the 
client 3 assumes that it is moving from the time of the last connection, and has 
already moved to the radio area which the server 1 A manages from the radio area 
which the server IB manages. 

[0100]Therefore, the client 3 transmits an authentication demand message to the 
server 1 A first, and (1) and the server 1 A answer by an authentication reply message 
(2). In the authentication demand from the client 3, it is given by the server 1B at the 
time of initial connection, and temporary ID currently kept by the temporary ID 
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storage 23 of the client is attached. The server 1 A transmits the certificate of a 
server, when it searches for the certificate storage 1 2 and the certificate 
corresponding to temporary ID is found (3). Transmission of the certificate from a 
client is omitted hereafter and it is the same as that of handshaking after it. 
[0101]Although the above-mentioned procedure may change a little with authentic 
methods which a system adopts, also in which method, it can omit the message 
switching for certificate exchange in that a server saves the once exchanged 
certificate. 

[0102](C-3) the effect of a 3rd embodiment, in order that the server linked to a client 
and the beginning may transmit the information (certificate) about attestation of a 
client to beforehand as mentioned above at other circumference servers according to 
a 3rd embodiment, Also when a client uses two or more servers, transmission of the 
certificate of a client can be made unnecessary between the server and client linked 
to the next. For this reason, when using two or more servers in order, the traffic 
between the server and client linked to the next can be reduced. And since 
information (certificate) transmission of other SABAHE is performed before a client 
connects with other servers, there is also little time delay at the time of re connection, 
and it ends. 

[0103](D) The system configuration which applies the moving terminal connection 
method concerning this embodiment is shown in the 4th embodiment (D-1) system 
configuration drawing 13. As for 1A-1D, as for a server, 2A - 2D, radio communication 
equipment and 3 are clients among a figure. In order to explain easily, only four servers 
are illustrated and only one client is illustrated. 

[0104]This embodiment also uses that by which the servers 1 A-1D are mounted in 
electronic computers, such as a workstation. However, the servers 1A-1D are 
connected via radio communication equipment, and other respectively specific 
servers and networks. Incidentally, as for radio communication equipment 2B and the 
server 1C, the radio communication equipment 2C and the server 1D are connected 
[ server 1 A ] with radio communication equipment 2D for the radio communication 
equipment 2A and the server 1 B. 

[01 05] The radio communication equipment 2A - 2D have the communications area 
fixed respectively, and mutual radio area does not cross. 

[01 06] The client 3 includes the function which shall be realized by movable computers, 
such as a personal digital assistant, and can communicate with the servers 1A-1D via 
the radio communication equipment 2A ~ 2D. 

[0107]The functional constitution of the servers 1A-1D is shown in drawing 14. 1 1 — 
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as for a service execution part and 15, a certificate storage and 13 are [ a certificate 
transfer part and 18 ] course top server search parts the communications department 
and 16 a temporary ID issuing part and 14 an authentication section and 12. This 
composition is the same composition as the server which requires the course top 
server search part 1 8 for a 2nd embodiment except for the point newly added. 
[0108]The course top server retrieval part 18 is a means to search other servers 
which exist on the course based on the moving trucking information on the client sent 
from the client. 

[0109]The functional constitution of the client 3 is shown in drawing 15. As for a 
temporary ID storage and 24, an authentication section and 22 are [ the Radio 
Communications Department and 27 ] moving trucking input parts a service execution 
part and 25 a certificate storage and 23 21. This composition is the same composition 
as the client which starts a 2nd embodiment except for the point which replaced the 
just before server position information storage 26 by the moving trucking input part 27. 
[0110]Here, the moving trucking input part 27 is a means by which the user of the 
client 3 inputs moving trucking. But the user of this moving trucking input part 27 is 
good like a general navigation system also considering the information on the 
recommended route which only inputs the destination and for which it is searched 
within a client as an input of moving trucking. 

[01 1 1](D-2) The outline of the connecting operation performed by a 4th embodiment 
is shown in connecting operation drawing 16. Drawing 16 (a) expresses the initial 
connection sequence performed when it goes into radio area for the first time after 
the client's 3 starting, or when the last time connected radio area goes into the radio 
area of other networks without connecting relation. Drawing 16 (b) expresses the re 
connection sequence performed when the client 3 which finished performs 
authentication once trespasses upon the last time connected radio area and other 
radio area on a network with connecting relation again. 

[01 12] In the following explanation, the client 3 makes it the order which connects the 
server which exists the server connected first in the middle of the server 1B and the 
schedule moving trucking to the destination of a client with the server 1 A and the 
server 1C. There shall be no radio area which the server 1D manages in the middle of 
schedule moving trucking. 

[01 13] First, the initial connection sequence shown in drawing 16 (a) is explained. In 
this sequence, the client 3 transmits an authentication demand message to the server 
1B first, and (1) and the server 1B answer by an authentication reply message (2). 
Negotiation of a cryptographic algorithm or a data compression method is performed 
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by this exchange. 

[01 14]The schedule moving trucking information on a client is attached to the 
authentication demand from the client 3. The user of a client inputs schedule moving 
trucking information using the moving trucking input part 27. In the authentication 
reply from the server 1B, temporary ID which temporary ID issuing part 13 generated 
is attached. Temporary ID is an identifier for specifying the client which exists in a 
system at the time as a meaning. 

[01 15]Next f the certificate containing the public key of the server IB is sent to the 
client 3, and, as for the server IB, (3) and the client 3 send the certificate containing 
the public key of the client 3 to the server 1B (4). The client 3 saves temporary ID at 
the temporary ID storage 23, and saves the certificate of the server IB at the 
certificate storage 22. The server 1B makes the certificate of a client correspond with 
published temporary ID, and saves it at the certificate storage 12. 
[01 1 6] Next, it enciphers by the public key of a pre master key server, and the client 3 
attaches the signature of a client, and sends it to a server (5). 

[01 1 7]By decrypting a message with the secret key of the server 1B, the server 1B 
takes out a pre master key, and checks the signature of a client by the public key of a 
client. The client 3 and the server 1B generate the master key used for actual 
communication by a pre master key. 

[01 18]Next, both the client 3 and the server 1B transmit the message which checks 
what preparation of communication by the symmetrical cipher system and a master 
key was able to carry out, and the data exchange about (6) and service is started (7). 
It enciphers with a master key and data exchange about service is performed. 
[01 19] When the data exchange about service is completed, or when the client 3 
comes from the radio area which the server 1B manages outside, the server 1B, 
Based on the moving trucking information attached to the authentication demand 
from the client 3, all the servers which have radio area on the moving trucking of the 
client 3 are searched by the course top server retrieval part 18. In the 
above-mentioned example, the server 1 A and the server 1C are outputted. And the 
server 1B transmits the certificate and temporary ID of the client concerned to these 
servers. 

[01 20] The server 1A and the server 1C make the received certificate correspond with 
temporary ID, and are saved at the certificate storage 1 2. 

[0121]Then, the re connection sequence shown in drawing 16 (b) is explained. In this 
sequence, it is assumed that the server 1 A shares this radio area first. That is, the 
client 3 assumes that it is moving from the time of the last connection, and has 
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already moved to the radio area which the server 1 A manages from the radio area 
which the server 1B manages. 

[0122]Therefore, the client 3 transmits an authentication demand message to the 
server 1A first, and (1) and the server 1 A answer by an authentication reply message 
(2). In the authentication demand from the client 3, it is given by the server 1B at the 
time of initial connection, and temporary ID currently kept by the temporary ID 
storage 23 of the client is attached. When the server 1 A searches for the certificate 
storage 1 2 and the certificate corresponding to temporary ID is found, a server 
transmits a certificate (3). Transmission of the certificate from a client is omitted 
hereafter and it is the same as that of handshaking after it. 

[01 23] Alt hough the above-mentioned procedure may change a little with authentic 
methods which a system adopts, also in which method, it can omit the message 
switching for certificate exchange in that a server saves the once exchanged 
certificate. 

[0124](D-3) the effect of a 4th embodiment, in order that the server linked to a client 
and the beginning may transmit the information about attestation of a client to the 
server on schedule moving trucking a priori as mentioned above according to a 4th 
embodiment, Also when a client uses two or more servers, transmission of the 
certificate of a client can be made unnecessary between the server and client linked 
to the next. For this reason, when using two or more servers in order, the traffic 
between the server and client linked to the next can be reduced. And since 
information transfer of other SABAHE is performed before a client connects, there is 
also little time delay at the time of re connection, and it ends. Since the server used 
as the destination of a certificate is only a thing on schedule moving trucking, there is 
also comparatively little futility to the resources of the whole system, and it ends. 
[0125](E) The system configuration which applies the moving terminal connection 
method concerning this embodiment is shown in the 5th embodiment (E~1) system 
configuration drawing 1 7 . As for 1A-1C, as for a server, and 2A-2G, radio 
communication equipment and 3 are clients among a figure. In order to explain easily, 
only three servers are illustrated and only one client is illustrated. 
[0126]This embodiment also uses that by which the servers 1A-1C are mounted in 
electronic computers, such as a workstation. However, the servers 1 A-1C are 
connected via radio communication equipment, and other respectively specific 
servers and networks. Incidentally, as for the radio communication equipment 2A and 
the server IB, radio communication equipment 2B and the server 1C are connected 
with the radio communication equipment 2C for the server 1 A. 
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[0127]The radio communication equipments 2A-2C have the communications area 
fixed respectively, and mutual radio area does not cross. 

[0128]The client 3 includes the function which shall be realized by movable computers, 
such as a personal digital assistant, and can communicate with the servers 1A-1G via 
the radio communication equipments 2A-2C. 

[0129]The functional constitution of the servers 1A-1C is shown in drawing 18. 1 1 — 
an authentication section and 12 — as for the communications department and 1 6, a 
temporary ID issuing part and 14 are [ a course top server retrieval part and 19 ] 
transit time estimating parts a certificate transfer part and 18 a service execution 
part and 15 a certificate storage and 13. This composition is the same composition as 
the server which requires the transit time estimating part 1 9 for a 4th embodiment 
except for the point newly added. 

[0130]The transit time estimating part 19 is a means to presume near time until a 
client passes through the radio area of the following server from the pass time of the 
radio area of a client, etc. Here, exact presumed time is not needed. For example, 
presumption by one time basis may be sufficient, and it is not necessary to use 
dynamic information. Of course, a presumed unit may be an example and a minute unit 
may be sufficient as it. 

[0131]The functional constitution of the client 3 is shown in drawing 19. As for a 
temporary ID storage and 24, an authentication section and 22 are [ the Radio 
Communications Department and 27 ] moving trucking input parts a service execution 
part and 25 a certificate storage and 23 21. This composition is the same composition 
as the client concerning a 4th embodiment. 

[0132](E-2) The outline of the connecting operation performed by a 5th embodiment 
is shown in connecting operation drawing 20. Drawing 20 (a) expresses the initial 
connection sequence performed when it goes into radio area for the first time after a 
client's starting, or when the last time connected radio area goes into the radio area of 
other networks which are not in connecting relation. Drawing 20 (b) expresses the re 
connection sequence performed when the client 3 which finished performs 
authentication once trespasses upon the last time connected radio area and other 
radio area on a network with connecting relation again. 

[01 33] In the following explanation, the client 3 makes it the order which connects the 
server which exists the server connected first in the middle of the server 1B and the 
schedule moving trucking to the destination of a client with the server 1 A and the 
server 1C. 

[01 34] First, the initial connection sequence shown in drawing 20 (a) is explained. In 
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this sequence, the client 3 transmits an authentication demand message to the server 
IB first, and (1) and the server IB answer by an authentication reply message (2). 
Negotiation of a cryptographic algorithm or a data compression method is performed 
by this exchange. 

[0135]The schedule moving trucking information on a client is attached to the 
authentication demand from the client 3. The user of a client does the person 
mosquito of the schedule moving trucking information using the moving trucking input 
part 27. In the authentication reply from the server IB, the term of validity of 
temporary ID which temporary ID issuing part 13 generated, and temporary ID is 
attached. 

[01 36] Here, temporary ID is an identifier for specifying the client which exists in a 
system at the time as a meaning. On the other hand, the term of validity of temporary 
ID is the time which can pass enough the server the client which the transit time 
estimating part 1 9 presumed from the schedule moving trucking of the client is due to 
connect the next. 

[01 3 7] Next, the certificate containing the public key of the server 1B is sent to the 
client 3, and, as for the server 1B, (3) and the client 3 send the certificate containing 
the public key of the client 3 to the server 1B (4). The client 3 saves temporary ID at 
the temporary ID storage 23, and saves the certificate of the server 1 B at the 
certificate storage 22. The server 1B makes the certificate of a client correspond with 
published temporary ID, and saves it at the certificate storage 1 2. 
[01 38] Next, the client 3 enciphers a pre master key by the public key of a server, 
attaches the signature of a client, and sends it to a server (5). 

[01 39] By decrypting a message with the secret key of the server IB, the server 1B 
takes out a pre master key, and checks the signature of a client by the public key of a 
client. The client 3 and the server 1B generate the master key used for actual 
communication by a pre master key. 

[01 40] Next, both the client 3 and the server 1B transmit the message which checks 
what communicative preparation was able to carry out, and it starts the data 
exchange about (6) and service (7). With a symmetrical cipher system, it enciphers 
with a master key and data exchange about service is performed. 
[0141]When the data exchange about service is completed, or when the client 3 
comes from the radio area which the server IB manages outside, the server 1B, 
Based on the moving trucking information attached to the authentication demand 
from the client 3, the server which has radio area next on the moving trucking of the 
client 3 is searched by the course top server retrieval part 18. The server 1A is 
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outputted in the above-mentioned example. And the server 1 B transmits the 
certificate of the client concerned, temporary ID, and the moving trucking information 
on a client to the server 1 A. 

[01 42] At this time, the moving trucking information on a client may be sent, after 
processing it so that the portion about a server may be removed. 
[0143]Then, the re connection sequence shown in drawing 20 (b) is explained. In this 
sequence, it is assumed that the server 1 A shares this radio area first. That is, the 
client 3 assumes that it is moving from the time of the last connection, and has 
already moved to the radio area which the server 1A manages from the radio area 
which the server 1B manages. 

[0144]Therefore, the client 3 transmits an authentication demand message to the 
server 1 A first, and (1) and the server 1A answer by an authentication reply message 
(2). In the authentication demand from the client 3, it is given by the server IB at the 
time of initial connection, and temporary ID currently kept by the temporary ID 
storage 23 of the client is attached. When the server 1 A searches for the certificate 
storage 12 and the certificate corresponding to temporary ID is found, SAPA 
transmits a certificate (3). Transmission of the certificate from a client is omitted 
hereafter and it is the same as that of handshaking after it. 

[01 45] Although the above-mentioned procedure may change a little with authentic 
methods which a system adopts, also in which method, it can omit the message 
switching for certificate exchange in that a server saves the once exchanged 
certificate. 

[0146](E-3) the effect of a 5th embodiment, in order that the server linked to a client 
and the beginning may transmit the information about attestation of a client to the 
server on schedule moving trucking a priori as mentioned above according to a 5th 
embodiment, Also when a client uses two or more servers, transmission of the 
certificate of a client can be unnecessarily performed between the server and client 
linked to the next. For this reason, when using two or more servers in order, the traffic 
between the server and client linked to the next can be reduced. And effective use of 
resources is enabled by having provided the term of validity of the information about 
attestation. 
[0147] 

[Effect of the Invention] (A) According to the invention according to claim 1 or 2, as 
mentioned above to a moving terminal and a server. The function in which after the 
completion of connection holds the information about the peculiar attestation 
exchanged, respectively by first-time wireless connection as it is is carried, By having 
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enabled it to omit the changing operation by the radio of the information about the 
attestation concerned at the time of the wireless connection for the second time 
between the same moving terminal and a server, mitigation of the communication 
burden which attestation takes is realizable. 

[0148](B) The result which the moving terminal moved as mentioned above according 
to the invention according to claim 3 or 4, When new wireless connection arises 
between different servers from having connected immediately before, the server 
which was newly the target of wireless connection, Based on the information about 
the server connected until just before being received from the moving terminal at the 
time of the connection concerned, Mitigation of the communication burden which 
attestation takes is realizable by requiring transmission of the information about the 
attestation currently exchanged to the applicable server, and having enabled it to omit 
a part of changing operation by the radio of the information about attestation for the 
second time. 

[0149](C) According to the invention according to claim 5 or 6, as mentioned above a 
server, The function to transmit beforehand the information about attestation peculiar 
to the moving terminal exchanged by first-time wireless connection to all the servers 
of the others which the moving terminal concerned may connect to the next is carried, 
By having enabled it to omit a part of changing operation by the radio of the 
information about attestation with the server which was newly the target of wireless 
connection, mitigation of the communication burden which attestation takes is 
realizable. 

[0150](D) According to the invention according to claim 7 or 8, as mentioned above a 
server, The function to transmit beforehand the information about attestation peculiar 
to the moving terminal exchanged by first-time wireless connection to all the servers 
of the others located on the moving trucking which had setting out in beforehand 
about the moving terminal concerned is carried, By having enabled it to omit a part of 
changing operation by the radio of the information about attestation with the server 
which was newly the target of wireless connection, mitigation of the communication 
burden which attestation takes is realizable. 

[01511(E) According to the invention according to claim 9 or 1 0, as mentioned above a 
server, With that to which it is the information which matches the information about 
attestation peculiar to the moving terminal exchanged by first-time wireless 
connection with the information about the attestation concerned, and the term of 
validity was attached. The function beforehand transmitted to all the servers of the 
others located on the moving trucking which had setting out in beforehand about the 
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moving terminal concerned is carried, By having enabled it to omit a part of changing 
operation by the radio of the information about attestation with the server which was 
newly the target of wireless connection, mitigation of the communication burden 
which attestation takes is realizable. 



[Translation done.] 



DESCRIPTION OF DRAWINGS 



[Brief Description of the Drawings] 

[Drawing 1]It is a figure showing the connection sequence between server clients by 
the moving terminal connection method concerning a 1st embodiment. 
[Drawing 2] It is a figure showing the system configuration which applies the moving 
terminal connection method concerning a 1st embodiment. 

[Drawing 3] It is a figure showing the example of functional constitution of the server 
used for realization of the moving terminal connection method concerning a 1st 
embodiment. 

[Drawing 4] It is a figure showing the example of functional constitution of the client 
used for realization of the moving terminal connection method concerning a 1st 
embodiment. 

[Drawing 5] It is a figure showing the system configuration which applies the moving 
terminal connection method concerning a 2nd embodiment. 

[Drawing 6] It is a figure showing the example of functional constitution of the server 
used for realization of the moving terminal connection method concerning a 2nd 
embodiment. 

[Drawing 7] It is a figure showing the example of functional constitution of the client 
used for realization of the moving terminal connection method concerning a 2nd 
embodiment. 

[Drawing 8] It is a figure showing the connection sequence between server clients by 
the moving terminal connection method concerning a 2nd embodiment. 
[Drawing 9]It is a figure showing the system configuration which applies the moving 
terminal connection method concerning a 3rd embodiment. 

[Drawing 10]It is a figure showing the example of functional constitution of the server 
used for realization of the moving terminal connection method concerning a 3rd 
embodiment. 
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[Drawing 1 1] It is a figure showing the example of functional constitution of the client 
used for realization of the moving terminal connection method concerning a 3rd 
embodiment, 

[Drawing 12] It is a figure showing the connection sequence between server clients by 
the moving terminal connection method concerning a 3rd embodiment. 
[Drawing 13] It is a figure showing the system configuration which applies the moving 
terminal connection method concerning a 4th embodiment. 

[Drawing 14] It is a figure showing the example of functional constitution of the server 
used for realization of the moving terminal connection method concerning a 4th 
embodiment. 

[Drawing 15] It is a figure showing the example of functional constitution of the client 
used for realization of the moving terminal connection method concerning a 4th 
embodiment. 

[Drawing 18] It is a figure showing the connection sequence between server clients by 
the moving terminal connection method concerning a 4th embodiment. 
[Drawing 1 7] It is a figure showing the system configuration which applies the moving 
terminal connection method concerning a 5th embodiment. 

[Drawing 18] It is a figure showing the example of functional constitution of the server 
used for realization of the moving terminal connection method concerning a 5th 
embodiment. 

[Drawing 1 9] lt is a figure showing the example of functional constitution of the client 
used for realization of the moving terminal connection method concerning a 5th 
embodiment. 

[Drawing 20] It is a figure showing the connection sequence between server clients by 
the moving terminal connection method concerning a 5th embodiment. 
[Description of Notations] 

1 [ — Authentication section, ] — A server, 2 — Radio communication equipment, 3 

— A client, 1 1, 21 12, 22 — A certificate storage, 13 — A temporary ID issuing part, 
14, 24 — Service execution part, 15 [ — A course top server retrieval part, 19 / A 
transit time estimating part, 23 / — A temporary ID storage, 25 / — The Radio 
Communications Department, 26 / — A just before server position information 
storage, 27 / — Moving trucking input part. ] — The communications department, 16 

— A certificate transfer part, 17 — A contiguity server information storing part, 18 

[Translation done.] 
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